Joomla has patched a critical bug which could be used to steal account information and fully compromise website domains. This week, the content management system (CMS) provider issued a security advisory detailing the flaw, which is found in the LDAP authentication plugin.

Earlier this year Keith Packard started a contract gig for Valve working to improve Linux's support for virtual reality head-mounted displays (VR HMDs). In particular, working on Direct Rendering Manager (DRM) and X.Org changes needed so VR HMDs will work well under Linux with the non-NVIDIA drivers.

A big part of this work is the concept of DRM leases, a new Vulkan extension, and other changes to the stack.

First and foremost, no operating system is 100 percent immune to attack. Whether a machine is online or offline, it can fall victim to malicious code. Although Linux is less prone to such attacks than, say, Windows, there is no absolute when it comes to security. I have witnessed, first hand, Linux servers hit by rootkits that were so nasty, the only solution was to reinstall and hope the data backup was current. I’ve been a victim of a (very brief) hacker getting onto my desktop, because I accidentally left desktop sharing running (that was certainly an eye opener). The lesson? Even Linux can be vulnerable.

So why does Linux need tools to prevent viruses, malware, and rootkits? It should be obvious why every server needs protection from rootkits — because once you are hit with a rootkit, all bets are off as to whether you can recover without reinstalling the platform. It’s antivirus and anti-malware where admins start getting a bit confused.

Let me put it simply — if your server (or desktop for that matter) makes use of Samba or sshfs (or any other sharing means), those files will be opened by users running operating systems that are vulnerable. Do you really want to take the chance that your Samba share directory could be dishing out files that contain malicious code? If that should happen, your job becomes exponentially more difficult. Similarly, if that Linux machine performs as a mail server, you would be remiss to not include AV scanning (lest your users be forwarding malicious mail).

You may ask a question yourself when you see this article. Is it possible to listen music in Linux terminal? Yes because nothing is impossible in Linux.

We have covered many popular GUI-based media players in our previous articles but we didn’t cover any CLI based media players as of now, so today we are going to cover about cmus, is one of the famous console-based media players among others (For CLI, very few applications is available in Linux).

GitHub and Facebook recently launched a set of tools that promise to allow you to transform your Atom hackable text editor into a veritable IDE (Integrated Development Environment). They call the project Atom-IDE.

With the release of Atom 1.21 Beta last week, GitHub introduced Language Server Protocol support to integrate its brand-new Atom-IDE project, which comes with built-in support for five popular language servers, including JavaScript, TypeScript, PHP, Java, C#, and Flow. But many others will come with future Atom updates.

Protecting our data is a constant battle, especially as technology continues to advance. A recent trend that has popped up is the installation of credit card skimmers, especially at locations such as gas pumps. With a simple piece of hardware and 30 seconds to install it, a hacker can easily steal credit card numbers from a gas pump without anyone knowing. Now, an open-source app for Android is attempting to help users avoid these skimmers.

With services like Netflix, Uber, YouTube, and Facebook, most people are used to apps that respond quickly, work efficiently, and are updated regularly. Patience is no longer a virtue, and thanks to apps like the ones mentioned above, when people use applications, they expect blistering speeds and uninterrupted service. If you do not provide that, users aren’t exactly starved for choice; it takes less than a minute to delete an app and download something else as a replacement.

Intel's Clear Linux and Clear Containers teams are happy to introduce the next-generation of Intel's Clear Containers project, version 3.0, which bring many important new features and performance improvements.

Rewritten in the Go language, Intel Clear Containers 3.0 introduces support for leveraging code used for namespace-based containers and better integrates into the container ecosystem, allowing support for Docker container engine and Kubernetes. It also improves the compatibility with the POSIX family of standards.

"Today’s release presents a generational and architectural shift to utilize virtcontainers, a modular and hypervisor agnostic library for hardware virtualized containers. Clear Containers 3.0 is written in Go language and boasts an OCI compatible runtime implementation (cc-runtime) that works both on top of virtcontainers, and as a platform for deployment," said Amy L Leeland, Technical Program Manager, Intel Corporation.

About one month ago, the HPE’s Spaceborne Computer was launched into the space using SpaceX Dragon Spacecraft. This beast was launched as a result of a partnership between Hewlett Packard Enterprise (HPE) and NASA to find out how high-performance computers perform in space. Now, this supercomputer is fully installed and operational in ISS.

The performance experiment will be carried out for one year, which is roughly the time it will take for a spacecraft to travel to Mars. At the moment, lots of calculations for space research projects are carried out on Earth, but this brings in an unavoidable factor of latency.

System76 is getting ready to unleash the first Beta release of their upcoming Pop!_OS Linux distribution, which should be available to download next week based on the Ubuntu 17.10 Final Beta.

It appears that System76's development team recently dropped focus on the Pop!_OS Installer, which they develop in collaboration with the elementary OS team, to concentrate on fixing critical bugs and add the final touches to the Beta release. They still need to add some patches to fix backlight brightness issues on Nvidia GPUs.

As ever, it's been a doozy of a week for cybersecurity, or lack thereof. The Equifax saga just keeps giving, the SEC admitted it was thoroughly pwned, and Slack doesn't bother to sign its Linux versions. We do spoil you so, Reg readers. And that was only yesterday. Here's the rest of the week's shenanigans we didn't get round to.

Docker, Docker, Docker — everyone’s talking about Docker. A surprising fact is that Docker wasn’t on anyone’s roadmap in 2014, but was on everyone’s roadmap just a year later. A lot of people are calling it the most phenomenal, amazing, and speedy adoption of technology that they’ve witnessed during their careers. But this sudden rise to fame hasn’t been a lonely one. Docker has shared this amazing growth spurt with an entire ecosystem of tools and services.

Ever since the announcement of Intel’s Thunderbolt 3 technology there has been external graphics card (eGPU) support. Unfortunately for most of last year, including with Intel’s own Skull Canyon NUC, putting this solution to use was challenging at best. Most motherboards didn’t fully support the technology and those that did typically required a system that was far more expensive. For example, the Skull Canyon NUC at release was $700, unconfigured. Adding SSDs and RAM usually bumped that up well over $1000.

Vivaldi, the Chromium-based web browser designed with the power user in mind, has been recently updated to version 1.12, a release that introduces highly requested features and a whole lot of under-the-hood improvements.

There are three big new features implemented in Vivaldi 1.12. The first is a built-in Image Properties feature that works when you right-click on an image on the Web, showing you a bunch of useful information, such as camera model, depth of field, ISO sensitivity, focal length, exposure, histogram, time and date, and white balance.

Chromium evangelist François Beaufort posted today on his Google+ profile information regarding the VR (Virtual Reality) capabilities of the open-source web browser, which is the base of Chrome OS and Google Chrome.

It would appear that the Chromium team is working on a set of new virtual reality features for the web browser, which means that more VR goodies are coming to popular Chromium-based web browsers like Opera, Vivaldi, and Google Chrome.

HUION PenTablet devices are graphics tablet devices aimed at artists. These tablets tend to aim for the lower end of the market, driver support is often somewhere between meh and disappointing. The DIGImend project used to take care of them, but with that out of the picture, the bugs bubble up to userspace more often.

The adoption and integration of open-source technologies have rapidly usurped the closed-source incumbents, so much so that investors are pouring record amounts of money into open-source software investments.

Thursday, 28th September 2017 will be a special day – not only is it the seventh birthday of The Document Foundation, but we will also be running an “Ask me (us) Anything” session on Reddit – specifically, the /r/linux subreddit.

Faced with growing dissatisfaction about licensing requirements for some of its open-source projects, Facebook today said it will move React, Jest, Flow, and Immutable.js under the MIT license next week.

"We're relicensing these projects because React is the foundation of a broad ecosystem of open source software for the web, and we don't want to hold back forward progress for nontechnical reasons," said Facebook engineering director Adam Wolff in a blog post on Friday.

Wolff said while Facebook continues to believe its BSD + Patents license has benefits, "we acknowledge that we failed to decisively convince this community."

This week, eLife and Collaborative Knowledge Foundation announced a partnership “to build a user-driven, open-source submission and peer-review platform” aimed at improving on existing industry models.

Working together, the two organisations “hope to accelerate progress in delivering a modern, fast and user-driven system,” they said in a press release. “The project will be designed to help streamline communications between authors, editors and reviewers at all stages of the submission and review process.”

As of this month, the Statistical Office of the Republic of Slovenia is making available 3374 data collections on the country’s open data portal, making it by far the portal’s biggest contributor. The Ministry of Labour, Family, Social Affairs and Equal Opportunities comes second, with 62 datasets.

You might already know that I love Manjaro Linux. And as an ardent Manjaro Linux fan, I have a bad news for you.

Recently, Philip, the lead developer of Manjaro Linux, announced that the project would be dropping support for the 32-bit architecture. He said that the reason for the move was “due to the decreasing popularity of i686 among the developers and the community”.

MYIR released an add-on board for its Linux-driven, i.MX6 UL-based MYS-6ULX SBC that adds a second LAN port, plus CAN, RS485, camera, audio, and RTC. In April, MYIR released a Linux-powered MYS-6ULX single board computer, which was notable for being available in two different versions using NXP’s low power, Cortex-A7 i.MX6 UltraLite (UL) or the more affordable, and almost identical i.MX6 ULL SoC.

With all due respect to Stallman fans out there, had he done even a little effort to promote Linux (or GNU/Linux as he prefers to call it) like Bryan Lunduke is doing today, we would have been in a much better position by now.

RMS's biggest problem is his approach. His insistence on whining continually against proprietary software companies has actually caused more harm than good (though his intentions were genuine). Rather, a nice diplomatic and logical approach (like Lunduke is taking now against the W3C members who want to bring in the DRM standards) goes a long way towards achieving your goal.

Vivaldi, the Chromium-based web browser designed with the power user in mind, has been recently updated to version 1.12, a release that introduces highly requested features and a whole lot of under-the-hood improvements.

More in Tux Machines

With only two days left until the upcoming Ubuntu 17.10 (Artful Aardvark) operating system hits the Final Beta milestone, developers are still working on adding finishing touches to this release, and they've again improved the Ubuntu Dock.

NethServer's Alessio Fattorini just informed us today about the availability of the first Beta release of the upcoming NethServer 7.4 Linux server-oriented operating system, which is based on CentOS 7.4 and comes with various improvements.

Firefox takes a Quantum leap forward with new developer edition

Earlier this year we wrote about Project Quantum, Mozilla's work to modernize Firefox and rebuild it to handle the needs of the modern Web.
Today, that work takes a big step toward the mainstream with the release of the new Firefox 57 developer edition. The old Firefox developer edition was based on the alpha-quality Aurora channel, which was two versions ahead of the stable version. In April, Mozilla scrapped the Aurora channel, and the developer edition moved to being based on the beta channel. The developer edition is used by a few hundred thousand users each month and is for the most part identical to the beta, except it has a different theme by default—a dark theme instead of the normal light one—and changes a few default settings in ways that developers tend to prefer.